The embedded Web server in the Cisco Cable Modem with Digital Voice models DPC2203 and EPC2203 contains a buffer overflow vulnerability that can be exploited remotely without authentication.  Apparently all you need to do is send a crafted HTTP requests to the Web server and you could see some arbitrary code execution.

Cisco said that its customers should contact their service providers to ensure that the software version installed on their devices includes the patch for this issue.

The Web-based administration interfaces of the Cisco DPC3941 Wireless Residential Gateway with Digital Voice and Cisco DPC3939B Wireless Residential Voice Gateway are affected by a vulnerability that could lead to information disclosure. An unauthenticated, remote attacker could exploit the flaw by sending a specially crafted HTTP request to an affected device in order to obtain sensitive information from it.

The Cisco Model DPQ3925 8×4 DOCSIS 3.0 Wireless Residential Gateway with EDVA is affected by a separate vulnerability, also triggered by malicious HTTP requests, that could lead to a denial-of-service attack.

Hackers have been hitting modems, routers and other gateway devices, hard lately – especially those distributed by ISPs to their customers. By compromising such devices, attackers can snoop on, hijack or disrupt network traffic or can attack other devices inside local networks.

Courtesy-Fud

Over the past two months, GM has entered into a $500 million alliance with ride-sharing company Lyft; formed Maven — its personal mobility brand for car-sharing fleets in many U.S. cities — and established a separate unit for autonomous vehicle development.

“This acquisition announcement clearly shows that GM is serious about developing the technology and controlling its own path to self-driving and driverless vehicles,” said Egil Juliussen, research director for IHS Automotive.

While GM did not disclose the financial details of the Cruise acquisition, reports estimated the purchase to be in the $1 billion range.

Founded in 2013, Cruise sells an aftermarket product that is positioned as a highway autopilot, according to IHS Automotive.

Vehicles using Cruise’s software cannot automatically changes lanes, but the technology does work at low speed and highway speed, meaning it’s classified between Level 2 and Level 3 in the National Highway Traffic Safety Administration’s levels of autonomous driving.

The NHTSA’s Level 3 includes limited self-driving automation and allows a driver to cede full control of all safety-critical functions under certain traffic or environmental conditions; Level 4 indicates a fully autonomous vehicle.

Cruise’s software was initially offered by Audi in its A4 and S4 vehicles as a $10,000 option that required installation work by Cruise. The product consisted of a sensor unit on top of the car and a computer in the trunk.

GM’s purchase of Cruise is likely to spur other carmakers “to react and determine what their strategy should be,” Juliussen said.

Other carmakers are likely to seek to become partners with Google and license Google’s self-driving and driverless software technology. Multiple manufacturers are likely to opt for a Google partnership, IHS said.

Source- http://www.thegurureview.net/aroundnet-category/gm-announces-acquisition-of-cruise-automation.html

Groupon has built its business model on the use of IBM’s patents, according to the complaint filed Wednesday in the federal court for the District of Delaware. “Despite IBM’s repeated attempts to negotiate, Groupon refuses to take a license, but continues to use IBM’s property,” according to the computing giant, which is asking the court to order Groupon to halt further infringement and pay damages.

IBM alleges that websites under Groupon’s control and its mobile applications use the technology claimed by the patents-in-suit for online local commerce marketplaces to connect merchants to consumers by offering goods and services at a discount.

About a year ago, IBM filed a similar lawsuit around the same patents against online travel company Priceline and three subsidiaries.

To develop the Prodigy online service that IBM launched with partners in the 1980s, the inventors of U.S. patents 5,796,967 and 7,072,849 developed new methods for presenting applications and advertisements in an interactive service that would take advantage of the computing power of each user’s PC and reduce demand on host servers, such as those used by Prodigy, IBM said in its complaint against Groupon.

“The inventors recognized that if applications were structured to be comprised of ‘objects’ of data and program code capable of being processed by a user’s PC, the Prodigy system would be more efficient than conventional systems,” it added.

Groupon is also accused of infringing U.S. Patent No.5,961,601, which was developed to find a better way of preserving state information in Internet communications, such as between an online merchant and a customer, according to IBM. Online merchants can use the state information to keep track of a client’s product and service selections while the client is shopping and then use that information when the client decides to make a purchase, something that stateless Internet communications protocols like HTTP cannot offer, it added.

Source- http://www.thegurureview.net/aroundnet-category/ibm-files-patent-infringement-lawsuit-against-groupon.html 

We ain’t surprised, but it is quite a shocking and naked fact when you consider it. The naming and resulting shaming happens in the HPE Cyber Risk Report 2016, which HPE said “identifies the top security threats plaguing enterprises”.

Enterprises, it seems, have myriad problems, of which Microsoft is just one.

“In 2015, we saw attackers infiltrate networks at an alarming rate, leading to some of the largest data breaches to date, but now is not the time to take the foot off the gas and put the enterprise on lockdown,” said Sue Barsamian, senior vice president and general manager for security products at HPE.

“We must learn from these incidents, understand and monitor the risk environment, and build security into the fabric of the organisation to better mitigate known and unknown threats, which will enable companies to fearlessly innovate and accelerate business growth.”

Microsoft earned its place in the enterprise nightmare probably because of its ubiquity. Applications, malware and vulnerabilities are a real problem, and it is Windows that provides the platform for this havoc.

“Software vulnerability exploitation continues to be a primary vector for attack, with mobile exploits gaining traction. Similar to 2014, the top 10 vulnerabilities exploited in 2015 were more than one-year-old, with 68 percent being three years old or more,” explained the report.

“In 2015, Microsoft Windows represented the most targeted software platform, with 42 percent of the top 20 discovered exploits directed at Microsoft platforms and applications.”

It is not all bad news for Redmond, as the Google-operated Android is also put forward as a professional pain in the butt. So is iOS, before Apple users get any ideas.

“Malware has evolved from being simply disruptive to a revenue-generating activity for attackers. While the overall number of newly discovered malware samples declined 3.6 percent year over year, the attack targets shifted notably in line with evolving enterprise trends and focused heavily on monetisation,” added the firm.

“As the number of connected mobile devices expands, malware is diversifying to target the most popular mobile operating platforms. The number of Android threats, malware and potentially unwanted applications have grown to more than 10,000 new threats discovered daily, reaching a total year-over-year increase of 153 percent.

“Apple iOS represented the greatest growth rate with a malware sample increase of more than 230 percent.”

Courtesy-TheInq

The social network continues to see surging interest in video. During one day last quarter, its users watched a combined 100 million hours of video. Roughly 500 million users watch at least some video each day.

That’s a lot of video and a lot of viewers, and Facebook wants to capitalize on it.

“We are exploring a dedicated place on Facebook for when they just want to watch videos,” CEO Mark Zuckerberg said Wednesday during a conference call to discuss Facebook’s quarterly financial results.

But he was tight-lipped on how the video might actually be presented.

Asked if a stand-alone video app is in the cards, he mentioned the success of Messenger and a Facebook app for managing Pages. “I do think there are additional opportunities for this and we’ll continue looking at them,” he said.

Facebook wants to encourage more video viewing because it keeps users on the site longer, helping it to sell more ads.

“Marketers also really love video and it’s a compelling way to reach consumers,” COO Sheryl Sandberg said during the call.

Zuckerberg has been watching the growth of video for osme time. At a town hall meeting in November 2014, he predicted, ”In five years, most of [Facebook] will be video.”

And it’s likely that most of that video will be consumed over mobile networks.

Among Facebook’s heaviest users — the billion people who access it on a daily basis — 90 percent use a mobile device, either solely or in addition to their PC.

It’s financial results for the fourth quarter were strong. Revenue was $5.8 billion, up 52 percent from the same period in 2014, while net profit more than doubled to $1.6 billion.

http://www.thegurureview.net/aroundnet-category/facebook-exploring-a-dedicated-video-service.html

A big focus of the AT&T discounts is special deals on Samsung’s Galaxy smartphones and Gear S2 smartwatches. Analysts interpreted that focus on Samsung devices as a way to clear out inventory prior to expected upgrade announcements coming in late February at Mobile World Congress in Barcelona.

AT&T is also facing pressure to add more subscribers, as analysts — including Evercore ISI this week– have predicted AT&T’s fourth-quarter postpaid subscriber loss will be more than 300,000. That comes amid reports that T-Mobile added 4.5 million net subscribers for the fourth quarter and Verizon Wireless added 525,000.

All the major carriers, including AT&T, hit the December holidays with special device deals, but AT&T apparently didn’t feel enough impact on its inventory from those offers, analysts said.

AT&T and Samsung are motivated to get rid of all the old inventory before new models arrive, said Patrick Moorhead, an analyst at Moor Insights & Strategy. “Retailers won’t run such an aggressive promotion unless they have a lot of stock.”

An AT&T spokeswoman provided a different explanation: “Due to popular demand, AT&T is bringing back some of its holiday promos.”

Those promos — available to both consumers and business customers at AT&T retail stores — include a free Samsung Gear S2 smartwatch for a limited time to any customer buying a Samsung Galaxy smartphone, or a free Samsung Galaxy Tab 4 for buying a Galaxy smartphone on an AT&T Next wireless plan. AT&T is also offering an iPad mini 2 for $99 when a customer buys a new iPhone on the Next plan.

For business customers, the 2-for-1 smartphone deal is new. It allows business customers to buy a new smartphone and then get another smartphone, valued at up to $650, for free.

Source-http://www.thegurureview.net/mobile-category/att-facing-pressure-offers-aggressive-smartphone-discounts.html

This is the second bout of attacks from the group of technology tearaways, according to Motherboard, which reports on the Clapper problem and its connection to a group known as Crackas With Attitude.

A member of the group, a young chap called Cracka, told Motherboard that access to a range of Clapper accounts had been seized, and that Clapper and the CIA haven’t a clue what’s going on.

“I’m pretty sure they don’t even know they’ve been hacked. You asked why I did it. I just wanted the gov to know people aren’t fucking around, people know what they’re doing and people don’t agree #FreePalestine,” he said.

The claims were supported by the Office of the Director of National Intelligence, which confirmed that something has happened and that the authorities are looking into it.

“We’re aware of the matter and we reported it to the appropriate authorities,” said spokesman Brian Hale, before going mute.

Cracka, representing himself on Twitter as @dickreject, is less quiet. He has tweeted a number of confirmatory and celebratory messages that are not particularly flattering about the CIA and its abilities.

This is the group’s second bite at the CIA cherry. The teenagers walked into the personal email account of CIA director John Brennan last year and had a good look around. Some of the impact of this was washed away when it was discovered that Brennan used an AOL account for his communications.

“A hacker, who describes himself as an American high school student, has breached the CIA boss’s AOL email account and found a host of sensitive government files that one assumes a government official shouldn’t be sending to his personal email address,” said security comment kingpin Graham Cluley at the time.

“I’m not sure what’s more embarrassing. Being hacked or having an AOL email account.”

Courtesy-TheInq

PC manufacturers shipped 75.7 million machines in the fourth quarter compared with about 82.6 million a year earlier. Sales sank 3.1 per cent in the US to 16.9 million in the quarter.

Gartner forecasts a fall of  a  percent in 2016 with the potential of a soft recovery later in the year.

Mikako Kitagawa, an analyst at Gartner said that the  fourth quarter of 2015 marked the fifth consecutive quarter of worldwide PC shipment decline. Holiday sales did not boost the overall PC shipments, hinting at changes to consumers’ PC purchase behavior.

Lenovo retained its leadership of the PC market with 20 percent of the global market in the fourth quarter. Its shipments dropped 4.2 percent. HP was the  No. 2 global PC maker, increased its market share slightly to almost 19 percent. The company maintained its top position in the U.S., with 27 percent of the market, despite a decline of 8.4 percent in fourth-quarter shipments. Del increased its global market share to 13.5 percent from 13.1 percent and ranked third.

IDC released similar figures saying that it was all the fault of the strong US dollar hampered overseas sales. It thinks that the decline in PC sales may slow in 2016, with IDC projecting a fall of 3.1 percent compared with 10 percent drop in 2015. Greater commercial adoption of Microsoft Windows 10 operating system may help stabilize sales.

Courtesy-Fud

In a move which is a side step from its normal expansion into its own brand of groceries and clothing, Amazon is flogging its own chips which are being made by Annapurna Labs.

Annapurna is an Israeli subsidiary that Amazon acquired a year ago and the chips are called Alpine. They are ARM-based processors are designed to drive home gateways, Wi-Fi routers, and Network Attached Storage (NAS) devices.

They’re meant for things like data centers and cheap smart home devices rather than smartphones and tablet which makes the concept of Amazon selling them seem rather odd. After all if you are a datacenter you usually go to a supplier and buy shedloads of expensive gear.  You don’t normally pop into Amazon and do a quick search, even if you are a Prime Member.

Intel currently has the data center sewn  up and ARM chip use is still thin on the ground however Amazon has done well in the cloud so peddling chips as part of a product package makes a bit of sense.

It won’t initially be targeting the kind of high-end servers which are powering the Internet of Stuff which is supposed to be the next big thing.  Asus, Netgear, and Synology are already producing devices that use Amazon’s Alpine .

Courtesy-Fud